asciinema-streaming-backup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly clones and probes arbitrary GitHub repositories and their files (e.g., git ls-remote / git clone and gh commands in setup-orphan-branch.sh, the autonomous-validation.sh/autonomous-validation scripts, and the GitHub workflow checks) which ingests user-/repo-provided content from the public web and uses those contents to decide/drive actions (branch creation, account switching, workflow triggering), so untrusted third-party content can materially influence tool use.